Products
OpenText Directory Services
- 16.4.2
- before 24.1
Source
security@opentext.com
Tags
CVE-2023-7249 details
Published : Aug. 12, 2024, 4:15 p.m.
Last Modified : Aug. 12, 2024, 6:57 p.m.
Last Modified : Aug. 12, 2024, 6:57 p.m.
Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in OpenText OpenText Directory Services allows Path Traversal.This issue affects OpenText Directory Services: from 16.4.2 before 24.1.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|---|---|
CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
References
URL | Source |
---|---|
https://support.opentext.com/csm?id=kb_article_view&sysparm_article=KB0807814 | security@opentext.com |
This website uses the NVD API, but is not approved or certified by it.